) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Checklist Repository
The National Checklist Program (NCP), defined by the NIST SP 800-70, is the U.S. government repository of publicly available security checklists (or benchmarks) that provide detailed low level guidance on setting the security configuration of operating systems and applications.
NCP provides metadata and links to checklists of various formats
including checklists that conform to the Security
Content Automation Protocol (SCAP). SCAP enables validated
security products to automatically perform configuration checking
using NCP checklists. For more information relating to the NCP please
visit the information page or
the glossary of terms.
Please note that the current search fields have been adjusted to
reflect NIST SP 800-70 Revision 4.
Search for Checklists using the fields below. The keyword search will search across the name, and summary.
There are 3 matching records.
| Name (Version) | Target | Authority | Last Modified | Resources |
|---|---|---|---|---|
| Oracle 11.2g Database STIG (Version 2, Release 4) | Oracle Database 11g 11.2 |
Defense Information Systems Agency |
01/26/2024 | Standalone XCCDF 1.1.4 - Oracle Database 11.2g STIG - Ver 2, Rel 4 |
| Oracle 11g Database STIG (Version 9 Release 1) | Oracle Database 11g Oracle Database 11g 11.1 Oracle Database 11g 11.2 |
Defense Information Systems Agency |
10/27/2021 | Standalone XCCDF 1.1.4 - Sunset - Oracle Database 11g STIG - Version 9, Release 1 |
| CIS Oracle Database 11g R2 (2.2.0) | Oracle Database 11g 11.2 |
Center for Internet Security (CIS) |
08/15/2019 | Prose - CIS Oracle Database 11g R2 Benchmark v2.2.0 |